- Kernel - mailweb.openeuler.org

[PATCH OLK-6.6] mm:userswap: change VM_USWAP_BIT to bit 61
by Wupeng Ma 19 Jun '25

19 Jun '25

Offering: HULK hulk inclusion category: bugfix bugzilla: https://gitee.com/openeuler/kernel/issues/I8KESX -------------------------------- During introduce userswap to 6.6, bit VM_USWAP is change to 62 by mistake. This is different with the existing bit in 5.10. Change this bit to bit 61 to fix this problem. Fixes: ec6250211515 ("mm/userswap: add VM_USWAP and SWP_USERSWAP_ENTRY") Signed-off-by: Wupeng Ma <mawupeng1(a)huawei.com> --- include/linux/mm.h | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/include/linux/mm.h b/include/linux/mm.h index d24d6115a9bf0..77a7d7c4c88c5 100644 --- a/include/linux/mm.h +++ b/include/linux/mm.h @@ -323,7 +323,7 @@ extern unsigned int kobjsize(const void *objp); #define VM_MERGEABLE 0x80000000 /* KSM may merge identical pages */ #ifdef CONFIG_USERSWAP -# define VM_USWAP_BIT 62 +# define VM_USWAP_BIT 61 #define VM_USWAP BIT(VM_USWAP_BIT) #else /* !CONFIG_USERSWAP */ #define VM_USWAP VM_NONE -- 2.43.0

2 1

[PATCH openEuler-1.0-LTS] video: fbdev: amba-clcd: Fix refcount leak bugs
by Liu Chuang 19 Jun '25

19 Jun '25

From: Liang He <windhl(a)126.com> stable inclusion from stable-v4.19.256 commit a97ff8a949dbf41be89f436b2b1a2b3d794493df category: bugfix bugzilla: https://gitee.com/src-openeuler/kernel/issues/ICGA5H CVE: CVE-2022-50109 Reference: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id… -------------------------------- [ Upstream commit 26c2b7d9fac42eb8317f3ceefa4c1a9a9170ca69 ] In clcdfb_of_init_display(), we should call of_node_put() for the references returned by of_graph_get_next_endpoint() and of_graph_get_remote_port_parent() which have increased the refcount. Besides, we should call of_node_put() both in fail path or when the references are not used anymore. Fixes: d10715be03bd ("video: ARM CLCD: Add DT support") Signed-off-by: Liang He <windhl(a)126.com> Signed-off-by: Helge Deller <deller(a)gmx.de> Signed-off-by: Sasha Levin <sashal(a)kernel.org> Signed-off-by: Liu Chuang <liuchuang40(a)huawei.com> --- drivers/video/fbdev/amba-clcd.c | 24 ++++++++++++++++++------ 1 file changed, 18 insertions(+), 6 deletions(-) diff --git a/drivers/video/fbdev/amba-clcd.c b/drivers/video/fbdev/amba-clcd.c index 38c1f324ce15..20eb93871630 100644 --- a/drivers/video/fbdev/amba-clcd.c +++ b/drivers/video/fbdev/amba-clcd.c @@ -772,8 +772,10 @@ static int clcdfb_of_init_display(struct clcd_fb *fb) return -ENODEV; panel = of_graph_get_remote_port_parent(endpoint); - if (!panel) - return -ENODEV; + if (!panel) { + err = -ENODEV; + goto out_endpoint_put; + } if (fb->vendor->init_panel) { err = fb->vendor->init_panel(fb, panel); @@ -783,11 +785,11 @@ static int clcdfb_of_init_display(struct clcd_fb *fb) err = clcdfb_of_get_backlight(panel, fb->panel); if (err) - return err; + goto out_panel_put; err = clcdfb_of_get_mode(&fb->dev->dev, panel, fb->panel); if (err) - return err; + goto out_panel_put; err = of_property_read_u32(fb->dev->dev.of_node, "max-memory-bandwidth", &max_bandwidth); @@ -816,11 +818,21 @@ static int clcdfb_of_init_display(struct clcd_fb *fb) if (of_property_read_u32_array(endpoint, "arm,pl11x,tft-r0g0b0-pads", - tft_r0b0g0, ARRAY_SIZE(tft_r0b0g0)) != 0) - return -ENOENT; + tft_r0b0g0, ARRAY_SIZE(tft_r0b0g0)) != 0) { + err = -ENOENT; + goto out_panel_put; + } + + of_node_put(panel); + of_node_put(endpoint); return clcdfb_of_init_tft_panel(fb, tft_r0b0g0[0], tft_r0b0g0[1], tft_r0b0g0[2]); +out_panel_put: + of_node_put(panel); +out_endpoint_put: + of_node_put(endpoint); + return err; } static int clcdfb_of_vram_setup(struct clcd_fb *fb) -- 2.34.1

2 1

[PATCH OLK-6.6] nfs: handle failure of nfs_get_lock_context in unlock path
by Li Lingfeng 19 Jun '25

19 Jun '25

stable inclusion from stable-v6.6.92 commit a6879a076b98c99c9fe747816fe1c29543442441 category: bugfix bugzilla: https://gitee.com/src-openeuler/kernel/issues/ICGAL9 CVE: CVE-2025-38023 Reference: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id… -------------------------------- [ Upstream commit c457dc1ec770a22636b473ce5d35614adfe97636 ] When memory is insufficient, the allocation of nfs_lock_context in nfs_get_lock_context() fails and returns -ENOMEM. If we mistakenly treat an nfs4_unlockdata structure (whose l_ctx member has been set to -ENOMEM) as valid and proceed to execute rpc_run_task(), this will trigger a NULL pointer dereference in nfs4_locku_prepare. For example: BUG: kernel NULL pointer dereference, address: 000000000000000c PGD 0 P4D 0 Oops: Oops: 0000 [#1] SMP PTI CPU: 15 UID: 0 PID: 12 Comm: kworker/u64:0 Not tainted 6.15.0-rc2-dirty #60 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-2.fc40 Workqueue: rpciod rpc_async_schedule RIP: 0010:nfs4_locku_prepare+0x35/0xc2 Code: 89 f2 48 89 fd 48 c7 c7 68 69 ef b5 53 48 8b 8e 90 00 00 00 48 89 f3 RSP: 0018:ffffbbafc006bdb8 EFLAGS: 00010246 RAX: 000000000000004b RBX: ffff9b964fc1fa00 RCX: 0000000000000000 RDX: 0000000000000000 RSI: fffffffffffffff4 RDI: ffff9ba53fddbf40 RBP: ffff9ba539934000 R08: 0000000000000000 R09: ffffbbafc006bc38 R10: ffffffffb6b689c8 R11: 0000000000000003 R12: ffff9ba539934030 R13: 0000000000000001 R14: 0000000004248060 R15: ffffffffb56d1c30 FS: 0000000000000000(0000) GS:ffff9ba5881f0000(0000) knlGS:00000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000000000000000c CR3: 000000093f244000 CR4: 00000000000006f0 Call Trace: <TASK> __rpc_execute+0xbc/0x480 rpc_async_schedule+0x2f/0x40 process_one_work+0x232/0x5d0 worker_thread+0x1da/0x3d0 ? __pfx_worker_thread+0x10/0x10 kthread+0x10d/0x240 ? __pfx_kthread+0x10/0x10 ret_from_fork+0x34/0x50 ? __pfx_kthread+0x10/0x10 ret_from_fork_asm+0x1a/0x30 </TASK> Modules linked in: CR2: 000000000000000c ---[ end trace 0000000000000000 ]--- Free the allocated nfs4_unlockdata when nfs_get_lock_context() fails and return NULL to terminate subsequent rpc_run_task, preventing NULL pointer dereference. Fixes: f30cb757f680 ("NFS: Always wait for I/O completion before unlock") Signed-off-by: Li Lingfeng <lilingfeng3(a)huawei.com> Reviewed-by: Jeff Layton <jlayton(a)kernel.org> Link: https://lore.kernel.org/r/20250417072508.3850532-1-lilingfeng3@huawei.com Signed-off-by: Trond Myklebust <trond.myklebust(a)hammerspace.com> Signed-off-by: Sasha Levin <sashal(a)kernel.org> Signed-off-by: Li Lingfeng <lilingfeng3(a)huawei.com> --- fs/nfs/nfs4proc.c | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-) diff --git a/fs/nfs/nfs4proc.c b/fs/nfs/nfs4proc.c index 4b12e45f5753..c140427e322c 100644 --- a/fs/nfs/nfs4proc.c +++ b/fs/nfs/nfs4proc.c @@ -6880,10 +6880,18 @@ static struct nfs4_unlockdata *nfs4_alloc_unlockdata(struct file_lock *fl, struct nfs4_unlockdata *p; struct nfs4_state *state = lsp->ls_state; struct inode *inode = state->inode; + struct nfs_lock_context *l_ctx; p = kzalloc(sizeof(*p), GFP_KERNEL); if (p == NULL) return NULL; + l_ctx = nfs_get_lock_context(ctx); + if (!IS_ERR(l_ctx)) { + p->l_ctx = l_ctx; + } else { + kfree(p); + return NULL; + } p->arg.fh = NFS_FH(inode); p->arg.fl = &p->fl; p->arg.seqid = seqid; @@ -6891,7 +6899,6 @@ static struct nfs4_unlockdata *nfs4_alloc_unlockdata(struct file_lock *fl, p->lsp = lsp; /* Ensure we don't close file until we're done freeing locks! */ p->ctx = get_nfs_open_context(ctx); - p->l_ctx = nfs_get_lock_context(ctx); locks_init_lock(&p->fl); locks_copy_lock(&p->fl, fl); p->server = NFS_SERVER(inode); -- 2.46.1

2 1

[PATCH OLK-5.10] nfs: handle failure of nfs_get_lock_context in unlock path
by Li Lingfeng 19 Jun '25

19 Jun '25

stable inclusion from stable-v5.10.238 commit 4c189fd40a09a03f9a900bedb2d9064f1734d72a category: bugfix bugzilla: https://gitee.com/src-openeuler/kernel/issues/ICGAL9 CVE: CVE-2025-38023 Reference: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id… -------------------------------- [ Upstream commit c457dc1ec770a22636b473ce5d35614adfe97636 ] When memory is insufficient, the allocation of nfs_lock_context in nfs_get_lock_context() fails and returns -ENOMEM. If we mistakenly treat an nfs4_unlockdata structure (whose l_ctx member has been set to -ENOMEM) as valid and proceed to execute rpc_run_task(), this will trigger a NULL pointer dereference in nfs4_locku_prepare. For example: BUG: kernel NULL pointer dereference, address: 000000000000000c PGD 0 P4D 0 Oops: Oops: 0000 [#1] SMP PTI CPU: 15 UID: 0 PID: 12 Comm: kworker/u64:0 Not tainted 6.15.0-rc2-dirty #60 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-2.fc40 Workqueue: rpciod rpc_async_schedule RIP: 0010:nfs4_locku_prepare+0x35/0xc2 Code: 89 f2 48 89 fd 48 c7 c7 68 69 ef b5 53 48 8b 8e 90 00 00 00 48 89 f3 RSP: 0018:ffffbbafc006bdb8 EFLAGS: 00010246 RAX: 000000000000004b RBX: ffff9b964fc1fa00 RCX: 0000000000000000 RDX: 0000000000000000 RSI: fffffffffffffff4 RDI: ffff9ba53fddbf40 RBP: ffff9ba539934000 R08: 0000000000000000 R09: ffffbbafc006bc38 R10: ffffffffb6b689c8 R11: 0000000000000003 R12: ffff9ba539934030 R13: 0000000000000001 R14: 0000000004248060 R15: ffffffffb56d1c30 FS: 0000000000000000(0000) GS:ffff9ba5881f0000(0000) knlGS:00000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000000000000000c CR3: 000000093f244000 CR4: 00000000000006f0 Call Trace: <TASK> __rpc_execute+0xbc/0x480 rpc_async_schedule+0x2f/0x40 process_one_work+0x232/0x5d0 worker_thread+0x1da/0x3d0 ? __pfx_worker_thread+0x10/0x10 kthread+0x10d/0x240 ? __pfx_kthread+0x10/0x10 ret_from_fork+0x34/0x50 ? __pfx_kthread+0x10/0x10 ret_from_fork_asm+0x1a/0x30 </TASK> Modules linked in: CR2: 000000000000000c ---[ end trace 0000000000000000 ]--- Free the allocated nfs4_unlockdata when nfs_get_lock_context() fails and return NULL to terminate subsequent rpc_run_task, preventing NULL pointer dereference. Fixes: f30cb757f680 ("NFS: Always wait for I/O completion before unlock") Signed-off-by: Li Lingfeng <lilingfeng3(a)huawei.com> Reviewed-by: Jeff Layton <jlayton(a)kernel.org> Link: https://lore.kernel.org/r/20250417072508.3850532-1-lilingfeng3@huawei.com Signed-off-by: Trond Myklebust <trond.myklebust(a)hammerspace.com> Signed-off-by: Sasha Levin <sashal(a)kernel.org> Signed-off-by: Li Lingfeng <lilingfeng3(a)huawei.com> --- fs/nfs/nfs4proc.c | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-) diff --git a/fs/nfs/nfs4proc.c b/fs/nfs/nfs4proc.c index 8dc77a194c62..349994e18fd6 100644 --- a/fs/nfs/nfs4proc.c +++ b/fs/nfs/nfs4proc.c @@ -6726,10 +6726,18 @@ static struct nfs4_unlockdata *nfs4_alloc_unlockdata(struct file_lock *fl, struct nfs4_unlockdata *p; struct nfs4_state *state = lsp->ls_state; struct inode *inode = state->inode; + struct nfs_lock_context *l_ctx; p = kzalloc(sizeof(*p), GFP_NOFS); if (p == NULL) return NULL; + l_ctx = nfs_get_lock_context(ctx); + if (!IS_ERR(l_ctx)) { + p->l_ctx = l_ctx; + } else { + kfree(p); + return NULL; + } p->arg.fh = NFS_FH(inode); p->arg.fl = &p->fl; p->arg.seqid = seqid; @@ -6737,7 +6745,6 @@ static struct nfs4_unlockdata *nfs4_alloc_unlockdata(struct file_lock *fl, p->lsp = lsp; /* Ensure we don't close file until we're done freeing locks! */ p->ctx = get_nfs_open_context(ctx); - p->l_ctx = nfs_get_lock_context(ctx); locks_init_lock(&p->fl); locks_copy_lock(&p->fl, fl); p->server = NFS_SERVER(inode); -- 2.46.1

2 1

[openeuler:openEuler-1.0-LTS] BUILD REGRESSION 4f84adc737008927c799b691e7b051bea90313cf
by kernel test robot 19 Jun '25

19 Jun '25

tree/branch: https://gitee.com/openeuler/kernel.git openEuler-1.0-LTS branch HEAD: 4f84adc737008927c799b691e7b051bea90313cf !16554 [openEuler-1.0-LTS] PCI: Supplement ACS quirk for more Zhaoxin Root Ports Error/Warning (recently discovered and may have been fixed): https://lore.kernel.org/oe-kbuild-all/202505201642.9kWf73yF-lkp@intel.com https://lore.kernel.org/oe-kbuild-all/202505201731.rOzzhiIH-lkp@intel.com https://lore.kernel.org/oe-kbuild-all/202505201910.3QGTFYPj-lkp@intel.com https://lore.kernel.org/oe-kbuild-all/202505202028.GvFwJHdW-lkp@intel.com https://lore.kernel.org/oe-kbuild-all/202505202138.LT7VPPBg-lkp@intel.com https://lore.kernel.org/oe-kbuild-all/202506061449.nBm6oAvj-lkp@intel.com https://lore.kernel.org/oe-kbuild-all/202506061633.Zsp5yfyi-lkp@intel.com https://lore.kernel.org/oe-kbuild-all/202506061637.CVNqsEqf-lkp@intel.com https://lore.kernel.org/oe-kbuild-all/202506061755.yar1Fr9d-lkp@intel.com https://lore.kernel.org/oe-kbuild-all/202506071856.LxaA5NHF-lkp@intel.com https://lore.kernel.org/oe-kbuild-all/202506182031.ldH7VynO-lkp@intel.com /kbuild/src/headers/Makefile:626: include/config/auto.conf.cmd: No such file or directory include/linux/list.h:63:20: warning: storing the address of local variable 'ticket' in '((struct list_head *)((char *)space_info + 8))[10].prev' [-Wdangling-pointer=] kernel/sched/core.c:5976:22: error: 'root_task_group' undeclared (first use in this function); did you mean 'task_group'? kernel/sched/core.c:5989:29: error: 'root_task_group' undeclared (first use in this function); did you mean 'task_group'? mm/huge_memory.c:2092:8: warning: variable 'orig_pud' set but not used [-Wunused-but-set-variable] mm/hugetlb.c:1432:6: warning: no previous prototype for 'free_huge_page_to_dhugetlb_pool' [-Wmissing-prototypes] mm/khugepaged.c:1387: warning: Function parameter or member 'hpage' not described in 'collapse_shmem' mm/khugepaged.c:1387: warning: Function parameter or member 'mapping' not described in 'collapse_shmem' mm/khugepaged.c:1387: warning: Function parameter or member 'mm' not described in 'collapse_shmem' mm/khugepaged.c:1387: warning: Function parameter or member 'node' not described in 'collapse_shmem' mm/khugepaged.c:1387: warning: Function parameter or member 'reliable' not described in 'collapse_shmem' mm/khugepaged.c:1387: warning: Function parameter or member 'start' not described in 'collapse_shmem' mm/maccess.c:85:6: warning: no previous prototype for '__probe_user_read' [-Wmissing-prototypes] mm/memcontrol.c:5000:6: warning: no previous prototype for 'dhugetlb_pool_is_free' [-Wmissing-prototypes] mm/memcontrol.c:5000:6: warning: no previous prototype for function 'dhugetlb_pool_is_free' [-Wmissing-prototypes] mm/memcontrol.c:6728: warning: bad line: | 0, otherwise. mm/memory.c:4803:3: warning: cast from 'int (*)(unsigned long, unsigned long, struct cgp_args *)' to 'ktask_thread_func' (aka 'int (*)(void *, void *, void *)') converts to incompatible function type [-Wcast-function-type-mismatch] mm/memory_hotplug.c:481:16: warning: variable 'start_pfn' set but not used [-Wunused-but-set-variable] mm/memory_hotplug.c:481:23: warning: variable 'start_pfn' set but not used [-Wunused-but-set-variable] mm/memory_hotplug.c:970:13: warning: 'rollback_node_hotadd' defined but not used [-Wunused-function] mm/page_alloc.c:3123: warning: Function parameter or member 'mt' not described in '__putback_isolated_page' mm/rmap.c:916:17: warning: variable 'cstart' set but not used [-Wunused-but-set-variable] mm/rmap.c:916:31: warning: variable 'cstart' set but not used [-Wunused-but-set-variable] mm/vmalloc.c:231:16: warning: variable 'start' set but not used [-Wunused-but-set-variable] mm/vmalloc.c:231:23: warning: variable 'start' set but not used [-Wunused-but-set-variable] Unverified Error/Warning (likely false positive, kindly check if interested): mm/.tmp_vmacache.o: warning: objtool: missing symbol for section .text mm/hugetlb.c: linux/share_pool.h is included more than once. mm/shmem.c: linux/share_pool.h is included more than once. mm/swap.c: linux/memremap.h is included more than once. Error/Warning ids grouped by kconfigs: recent_errors |-- arm64-allmodconfig | |-- include-asm-generic-bitops-non-atomic.h:error:array-subscript-long-unsigned-int-is-partly-outside-array-bounds-of-u32-aka-unsigned-int | |-- include-uapi-linux-sctp.h:error:alignment-of-struct-sctp_paddr_change-is-less-than | |-- include-uapi-linux-sctp.h:error:alignment-of-struct-sctp_paddrinfo-is-less-than | |-- include-uapi-linux-sctp.h:error:alignment-of-struct-sctp_paddrparams-is-less-than | |-- include-uapi-linux-sctp.h:error:alignment-of-struct-sctp_prim-is-less-than | |-- include-uapi-linux-sctp.h:error:alignment-of-struct-sctp_setpeerprim-is-less-than | |-- include-uapi-linux-sctp.h:error:spinfo_address-offset-in-struct-sctp_paddrinfo-isn-t-aligned-to | |-- include-uapi-linux-sctp.h:error:spp_address-offset-in-struct-sctp_paddrparams-isn-t-aligned-to | |-- include-uapi-linux-sctp.h:error:ssp_addr-offset-in-struct-sctp_prim-isn-t-aligned-to | |-- include-uapi-linux-sctp.h:error:sspp_addr-offset-in-struct-sctp_setpeerprim-isn-t-aligned-to | |-- mm-khugepaged.c:warning:Function-parameter-or-member-hpage-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-mapping-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-mm-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-node-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-reliable-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-start-not-described-in-collapse_shmem | |-- mm-maccess.c:warning:no-previous-prototype-for-__probe_user_read | |-- mm-memcontrol.c:warning:bad-line:otherwise. | |-- mm-memory_hotplug.c:warning:rollback_node_hotadd-defined-but-not-used | |-- mm-memory_hotplug.c:warning:unused-variable-start_pfn | |-- mm-memory_hotplug.c:warning:variable-start_pfn-set-but-not-used | |-- mm-page_alloc.c:warning:Function-parameter-or-member-mt-not-described-in-__putback_isolated_page | `-- mm-vmalloc.c:warning:variable-start-set-but-not-used |-- arm64-allnoconfig | |-- kernel-sched-core.c:error:root_task_group-undeclared-(first-use-in-this-function) | |-- mm-maccess.c:warning:no-previous-prototype-for-__probe_user_read | |-- mm-page_alloc.c:warning:Function-parameter-or-member-mt-not-described-in-__putback_isolated_page | |-- mm-rmap.c:warning:variable-cstart-set-but-not-used | `-- mm-vmalloc.c:warning:variable-start-set-but-not-used |-- arm64-defconfig | |-- mm-hugetlb.c:warning:no-previous-prototype-for-free_huge_page_to_dhugetlb_pool | |-- mm-khugepaged.c:warning:Function-parameter-or-member-hpage-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-mapping-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-mm-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-node-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-reliable-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-start-not-described-in-collapse_shmem | |-- mm-maccess.c:warning:no-previous-prototype-for-__probe_user_read | |-- mm-memcontrol.c:warning:bad-line:otherwise. | |-- mm-memcontrol.c:warning:no-previous-prototype-for-dhugetlb_pool_is_free | |-- mm-page_alloc.c:warning:Function-parameter-or-member-mt-not-described-in-__putback_isolated_page | `-- mm-vmalloc.c:warning:variable-start-set-but-not-used |-- arm64-randconfig-001-20250618 | |-- mm-khugepaged.c:warning:Function-parameter-or-member-hpage-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-mapping-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-mm-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-node-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-reliable-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-start-not-described-in-collapse_shmem | |-- mm-page_alloc.c:warning:Function-parameter-or-member-mt-not-described-in-__putback_isolated_page | `-- mm-vmalloc.c:warning:variable-start-set-but-not-used |-- arm64-randconfig-002-20250618 | |-- mm-hugetlb.c:warning:no-previous-prototype-for-free_huge_page_to_dhugetlb_pool | |-- mm-maccess.c:warning:no-previous-prototype-for-__probe_user_read | |-- mm-memory_hotplug.c:warning:rollback_node_hotadd-defined-but-not-used | |-- mm-memory_hotplug.c:warning:unused-variable-start_pfn | |-- mm-memory_hotplug.c:warning:variable-start_pfn-set-but-not-used | |-- mm-page_alloc.c:warning:Function-parameter-or-member-mt-not-described-in-__putback_isolated_page | |-- mm-rmap.c:warning:variable-cstart-set-but-not-used | `-- mm-vmalloc.c:warning:variable-start-set-but-not-used |-- arm64-randconfig-003-20250618 | |-- include-linux-list.h:warning:storing-the-address-of-local-variable-ticket-in-((struct-list_head-)((char-)space_info-))-.prev | |-- mm-hugetlb.c:warning:no-previous-prototype-for-free_huge_page_to_dhugetlb_pool | |-- mm-khugepaged.c:warning:Function-parameter-or-member-hpage-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-mapping-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-mm-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-node-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-reliable-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-start-not-described-in-collapse_shmem | |-- mm-maccess.c:warning:no-previous-prototype-for-__probe_user_read | |-- mm-memory_hotplug.c:warning:rollback_node_hotadd-defined-but-not-used | |-- mm-memory_hotplug.c:warning:unused-variable-start_pfn | |-- mm-memory_hotplug.c:warning:variable-start_pfn-set-but-not-used | |-- mm-page_alloc.c:warning:Function-parameter-or-member-mt-not-described-in-__putback_isolated_page | `-- mm-vmalloc.c:warning:variable-start-set-but-not-used |-- arm64-randconfig-004-20250618 | |-- kernel-sched-core.c:error:root_task_group-undeclared-(first-use-in-this-function) | |-- mm-khugepaged.c:warning:Function-parameter-or-member-hpage-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-mapping-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-mm-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-node-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-reliable-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-start-not-described-in-collapse_shmem | |-- mm-maccess.c:warning:no-previous-prototype-for-__probe_user_read | |-- mm-memcontrol.c:warning:bad-line:otherwise. | |-- mm-memcontrol.c:warning:no-previous-prototype-for-dhugetlb_pool_is_free | |-- mm-page_alloc.c:warning:Function-parameter-or-member-mt-not-described-in-__putback_isolated_page | `-- mm-vmalloc.c:warning:variable-start-set-but-not-used |-- x86_64-allnoconfig | |-- Makefile:include-config-auto.conf.cmd:No-such-file-or-directory | |-- mm-hugetlb.c:linux-share_pool.h-is-included-more-than-once. | |-- mm-page_alloc.c:warning:Function-parameter-or-member-mt-not-described-in-__putback_isolated_page | |-- mm-rmap.c:warning:variable-cstart-set-but-not-used | |-- mm-shmem.c:linux-share_pool.h-is-included-more-than-once. | |-- mm-swap.c:linux-memremap.h-is-included-more-than-once. | |-- mm-vmalloc.c:warning:variable-start-set-but-not-used | `-- mm-vmscan.c:error:implicit-declaration-of-function-kernel_swap_enabled-Werror-Wimplicit-function-declaration |-- x86_64-allyesconfig | |-- mm-huge_memory.c:warning:variable-orig_pud-set-but-not-used | |-- mm-khugepaged.c:warning:Function-parameter-or-member-hpage-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-mapping-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-mm-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-node-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-reliable-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-start-not-described-in-collapse_shmem | |-- mm-memcontrol.c:warning:bad-line:otherwise. | |-- mm-memory.c:warning:cast-from-int-(-)(unsigned-long-unsigned-long-struct-cgp_args-)-to-ktask_thread_func-(aka-int-(-)(void-void-void-)-)-converts-to-incompatible-function-type | |-- mm-memory_hotplug.c:warning:unused-variable-start_pfn | |-- mm-memory_hotplug.c:warning:variable-start_pfn-set-but-not-used | |-- mm-page_alloc.c:warning:Function-parameter-or-member-mt-not-described-in-__putback_isolated_page | |-- mm-rmap.c:warning:variable-cstart-set-but-not-used | `-- mm-vmalloc.c:warning:variable-start-set-but-not-used |-- x86_64-buildonly-randconfig-001-20250618 | |-- kernel-hung_task.c:error:use-of-undeclared-identifier-sysctl_hung_task_all_cpu_backtrace | |-- mm-memory_hotplug.c:warning:unused-variable-start_pfn | |-- mm-memory_hotplug.c:warning:variable-start_pfn-set-but-not-used | |-- mm-page_alloc.c:warning:Function-parameter-or-member-mt-not-described-in-__putback_isolated_page | |-- mm-rmap.c:warning:variable-cstart-set-but-not-used | |-- mm-vmalloc.c:warning:variable-start-set-but-not-used | `-- mm-vmscan.c:error:implicit-declaration-of-function-kernel_swap_enabled-Werror-Wimplicit-function-declaration |-- x86_64-buildonly-randconfig-002-20250618 | |-- mm-page_alloc.c:warning:Function-parameter-or-member-mt-not-described-in-__putback_isolated_page | |-- mm-rmap.c:warning:variable-cstart-set-but-not-used | |-- mm-vmalloc.c:warning:variable-start-set-but-not-used | `-- mm-vmscan.c:error:implicit-declaration-of-function-kernel_swap_enabled-Werror-Wimplicit-function-declaration |-- x86_64-buildonly-randconfig-004-20250618 | |-- ld.lld:error:undefined-symbol:init_net | |-- mm-huge_memory.c:warning:variable-orig_pud-set-but-not-used | |-- mm-hugetlb.c:warning:no-previous-prototype-for-function-free_huge_page_to_dhugetlb_pool | |-- mm-khugepaged.c:warning:Function-parameter-or-member-hpage-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-mapping-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-mm-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-node-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-reliable-not-described-in-collapse_shmem | |-- mm-khugepaged.c:warning:Function-parameter-or-member-start-not-described-in-collapse_shmem | |-- mm-memory.c:warning:cast-from-int-(-)(unsigned-long-unsigned-long-struct-cgp_args-)-to-ktask_thread_func-(aka-int-(-)(void-void-void-)-)-converts-to-incompatible-function-type | |-- mm-memory_hotplug.c:warning:unused-variable-start_pfn | |-- mm-memory_hotplug.c:warning:variable-start_pfn-set-but-not-used | |-- mm-page_alloc.c:warning:Function-parameter-or-member-mt-not-described-in-__putback_isolated_page | |-- mm-rmap.c:warning:variable-cstart-set-but-not-used | `-- mm-vmalloc.c:warning:variable-start-set-but-not-used |-- x86_64-buildonly-randconfig-005-20250618 | |-- mm-.tmp_vmacache.o:warning:objtool:missing-symbol-for-section-.text | |-- mm-memory_hotplug.c:warning:unused-variable-start_pfn | |-- mm-memory_hotplug.c:warning:variable-start_pfn-set-but-not-used | |-- mm-page_alloc.c:warning:Function-parameter-or-member-mt-not-described-in-__putback_isolated_page | |-- mm-rmap.c:warning:variable-cstart-set-but-not-used | `-- mm-vmalloc.c:warning:variable-start-set-but-not-used |-- x86_64-defconfig | |-- mm-hugetlb.c:warning:no-previous-prototype-for-free_huge_page_to_dhugetlb_pool | |-- mm-maccess.c:warning:no-previous-prototype-for-__probe_user_read | |-- mm-page_alloc.c:warning:Function-parameter-or-member-mt-not-described-in-__putback_isolated_page | |-- mm-rmap.c:warning:variable-cstart-set-but-not-used | `-- mm-vmalloc.c:warning:variable-start-set-but-not-used |-- x86_64-randconfig-101-20250619 | |-- kernel-hung_task.c:error:use-of-undeclared-identifier-sysctl_hung_task_all_cpu_backtrace | |-- mm-page_alloc.c:warning:Function-parameter-or-member-mt-not-described-in-__putback_isolated_page | |-- mm-rmap.c:warning:variable-cstart-set-but-not-used | `-- mm-vmalloc.c:warning:variable-start-set-but-not-used |-- x86_64-randconfig-121-20250619 | |-- mm-hugetlb.c:warning:no-previous-prototype-for-function-free_huge_page_to_dhugetlb_pool | |-- mm-memcontrol.c:warning:bad-line:otherwise. | |-- mm-memcontrol.c:warning:no-previous-prototype-for-function-dhugetlb_pool_is_free | |-- mm-memory.c:warning:cast-from-int-(-)(unsigned-long-unsigned-long-struct-cgp_args-)-to-ktask_thread_func-(aka-int-(-)(void-void-void-)-)-converts-to-incompatible-function-type | |-- mm-memory_hotplug.c:warning:unused-variable-start_pfn | |-- mm-memory_hotplug.c:warning:variable-start_pfn-set-but-not-used | |-- mm-page_alloc.c:warning:Function-parameter-or-member-mt-not-described-in-__putback_isolated_page | |-- mm-rmap.c:warning:variable-cstart-set-but-not-used | `-- mm-vmalloc.c:warning:variable-start-set-but-not-used `-- x86_64-randconfig-123-20250619 |-- mm-memcontrol.c:warning:bad-line:otherwise. |-- mm-memcontrol.c:warning:no-previous-prototype-for-function-dhugetlb_pool_is_free |-- mm-page_alloc.c:warning:Function-parameter-or-member-mt-not-described-in-__putback_isolated_page |-- mm-rmap.c:warning:variable-cstart-set-but-not-used |-- mm-vmalloc.c:warning:variable-start-set-but-not-used `-- mm-vmscan.c:error:implicit-declaration-of-function-kernel_swap_enabled-Werror-Wimplicit-function-declaration elapsed time: 1261m configs tested: 17 configs skipped: 128 tested configs: arm64 allmodconfig gcc-15.1.0 arm64 allnoconfig gcc-15.1.0 arm64 defconfig gcc-15.1.0 arm64 randconfig-001-20250618 gcc-7.5.0 arm64 randconfig-002-20250618 gcc-9.5.0 arm64 randconfig-003-20250618 gcc-14.3.0 arm64 randconfig-004-20250618 gcc-8.5.0 x86_64 allnoconfig clang-20 x86_64 allyesconfig clang-20 x86_64 buildonly-randconfig-001-20250618 clang-20 x86_64 buildonly-randconfig-002-20250618 clang-20 x86_64 buildonly-randconfig-003-20250618 gcc-12 x86_64 buildonly-randconfig-004-20250618 clang-20 x86_64 buildonly-randconfig-005-20250618 clang-20 x86_64 buildonly-randconfig-006-20250618 gcc-12 x86_64 defconfig gcc-11 x86_64 rhel-9.4-rust clang-18 -- 0-DAY CI Kernel Test Service https://github.com/intel/lkp-tests/wiki

1 0

[PATCH OLK-5.10 V2 0/2] add-exec-ebpf-v3
by Cheng Yu 19 Jun '25

19 Jun '25

add-exec-ebpf-v3 Cheng Yu (2): sched/ebpf: Add bpf_sched_cfs_exec_set_cpumask hook sched/ebpf: Add helper to set prefer cpumask for the task fs/exec.c | 7 ++++++ include/linux/sched_hook_defs.h | 1 + include/uapi/linux/bpf.h | 7 ++++++ kernel/sched/bpf_sched.c | 38 +++++++++++++++++++++++++++++++++ tools/include/uapi/linux/bpf.h | 7 ++++++ tools/lib/bpf/libbpf_sched.h | 6 ++++++ 6 files changed, 66 insertions(+) -- 2.25.1

2 3

[PATCH OLK-5.10] arm64: xcall: Fix GPR touch as the original step
by Yipeng Zou 19 Jun '25

19 Jun '25

hulk inclusion category: bugfix bugzilla: https://gitee.com/openeuler/kernel/issues/ICG4XI -------------------------------- Kernel_{entry, exit} fast mode should only skip some alternative step but not any register. Fix it directly, moves all register touch outside fast mode. Fixes: f22cbd7df343 ("arm64: Faster SVC exception handler with xcall") Signed-off-by: Yipeng Zou <zouyipeng(a)huawei.com> --- arch/arm64/kernel/entry.S | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/arch/arm64/kernel/entry.S b/arch/arm64/kernel/entry.S index 976f629c60fe..b9d5b9b9ea52 100644 --- a/arch/arm64/kernel/entry.S +++ b/arch/arm64/kernel/entry.S @@ -212,8 +212,8 @@ alternative_else_nop_endif * Ensure MDSCR_EL1.SS is clear, since we can unmask debug exceptions * when scheduling. */ - .if \fast_mode == std ldr x19, [tsk, #TSK_TI_FLAGS] + .if \fast_mode == std disable_step_tsk x19, x20 .endif -- 2.34.1

2 1

[PATCH OLK-6.6] arm64: xcall: Fix GPR touch as the original step
by Yipeng Zou 19 Jun '25

19 Jun '25

hulk inclusion category: bugfix bugzilla: https://gitee.com/openeuler/kernel/issues/ICG4XI -------------------------------- Kernel_{entry, exit} fast mode should only skip some alternative step but not any register. Fix it directly, moves all register touch outside fast mode. Fixes: cf5f2d9ff017 ("arm64: Faster SVC exception handler with xcall") Signed-off-by: Yipeng Zou <zouyipeng(a)huawei.com> --- arch/arm64/kernel/entry.S | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/arch/arm64/kernel/entry.S b/arch/arm64/kernel/entry.S index bd43e39d35c0..117be8a7d529 100644 --- a/arch/arm64/kernel/entry.S +++ b/arch/arm64/kernel/entry.S @@ -238,14 +238,14 @@ alternative_cb_end * Ensure MDSCR_EL1.SS is clear, since we can unmask debug exceptions * when scheduling. */ - .if \fast_mode == std ldr x19, [tsk, #TSK_TI_FLAGS] + .if \fast_mode == std disable_step_tsk x19, x20 .endif /* Check for asynchronous tag check faults in user space */ - .if \fast_mode == std ldr x0, [tsk, THREAD_SCTLR_USER] + .if \fast_mode == std check_mte_async_tcf x22, x23, x0 .endif @@ -288,11 +288,11 @@ alternative_if ARM64_MTE isb b 1f alternative_else_nop_endif + .endif alternative_if ARM64_HAS_ADDRESS_AUTH isb alternative_else_nop_endif 1: - .endif scs_load_current .else @@ -409,8 +409,8 @@ alternative_else_nop_endif scs_save tsk /* Ignore asynchronous tag check faults in the uaccess routines */ - .if \fast_mode == std ldr x0, [tsk, THREAD_SCTLR_USER] + .if \fast_mode == std clear_mte_async_tcf x0 .endif -- 2.34.1

2 1

[PATCH] sched/fair: Use candidate prev/recent_used CPU if scanning failed for cluster wakeup
by Qi Xi 19 Jun '25

19 Jun '25

From: Yicong Yang <yangyicong(a)hisilicon.com> mainline inclusion from mainline-v6.7-rc1 commit 22165f61d0c4092adf40f967c899e5d8b8a0d703 category: feature bugzilla: https://gitee.com/openeuler/kernel/issues/I8TC1S CVE: NA Reference: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?… ---------------------------------------------------------------------- Chen Yu reports a hackbench regression of cluster wakeup when hackbench threads equal to the CPU number [1]. Analysis shows it's because we wake up more on the target CPU even if the prev_cpu is a good wakeup candidate and leads to the decrease of the CPU utilization. Generally if the task's prev_cpu is idle we'll wake up the task on it without scanning. On cluster machines we'll try to wake up the task in the same cluster of the target for better cache affinity, so if the prev_cpu is idle but not sharing the same cluster with the target we'll still try to find an idle CPU within the cluster. This will improve the performance at low loads on cluster machines. But in the issue above, if the prev_cpu is idle but not in the cluster with the target CPU, we'll try to scan an idle one in the cluster. But since the system is busy, we're likely to fail the scanning and use target instead, even if the prev_cpu is idle. Then leads to the regression. This patch solves this in 2 steps: o record the prev_cpu/recent_used_cpu if they're good wakeup candidates but not sharing the cluster with the target. o on scanning failure use the prev_cpu/recent_used_cpu if they're recorded as idle [1] https://lore.kernel.org/all/ZGzDLuVaHR1PAYDt@chenyu5-mobl1/ Closes: https://lore.kernel.org/all/ZGsLy83wPIpamy6x@chenyu5-mobl1/ Reported-by: Chen Yu <yu.c.chen(a)intel.com> Signed-off-by: Yicong Yang <yangyicong(a)hisilicon.com> Tested-and-reviewed-by: Chen Yu <yu.c.chen(a)intel.com> Signed-off-by: Peter Zijlstra (Intel) <peterz(a)infradead.org> Reviewed-by: Vincent Guittot <vincent.guittot(a)linaro.org> Link: https://lkml.kernel.org/r/20231019033323.54147-4-yangyicong@huawei.com Signed-off-by: Jie Liu <liujie375(a)h-partners.com> --- kernel/sched/fair.c | 17 ++++++++++++++++- 1 file changed, 16 insertions(+), 1 deletion(-) diff --git a/kernel/sched/fair.c b/kernel/sched/fair.c index c47b38eded19..523b5aee2d6a 100644 --- a/kernel/sched/fair.c +++ b/kernel/sched/fair.c @@ -7392,7 +7392,7 @@ static int select_idle_sibling(struct task_struct *p, int prev, int target) bool has_idle_core = false; struct sched_domain *sd; unsigned long task_util, util_min, util_max; - int i, recent_used_cpu; + int i, recent_used_cpu, prev_aff = -1; /* * On asymmetric system, update task utilization because we will check @@ -7424,6 +7424,8 @@ static int select_idle_sibling(struct task_struct *p, int prev, int target) if (!static_branch_unlikely(&sched_cluster_active) || cpus_share_resources(prev, target)) return prev; + + prev_aff = prev; } /* @@ -7456,6 +7458,8 @@ static int select_idle_sibling(struct task_struct *p, int prev, int target) cpus_share_resources(recent_used_cpu, target)) return recent_used_cpu; + } else { + recent_used_cpu = -1; } /* @@ -7496,6 +7500,17 @@ static int select_idle_sibling(struct task_struct *p, int prev, int target) if ((unsigned)i < nr_cpumask_bits) return i; + /* + * For cluster machines which have lower sharing cache like L2 or + * LLC Tag, we tend to find an idle CPU in the target's cluster + * first. But prev_cpu or recent_used_cpu may also be a good candidate, + * use them if possible when no idle CPU found in select_idle_cpu(). + */ + if ((unsigned int)prev_aff < nr_cpumask_bits) + return prev_aff; + if ((unsigned int)recent_used_cpu < nr_cpumask_bits) + return recent_used_cpu; + return target; } -- 2.33.0

1 0

[PATCH OLK-6.6 0/4] LoongArch: Fix bugs in huge_pte_offset/__alloc_pages_slowpath/iommu
by Hongchen Zhang 19 Jun '25

19 Jun '25

Hongchen Zhang (1): iommu/loongarch: fix potential hung task when error occurred Huacai Chen (1): LoongArch: Fix early_numa_add_cpu() usage for FDT systems Tianyang Zhang (2): mm/page_alloc.c: avoid infinite retries caused by cpuset race LoongArch: Fix panic caused by NULL-PMD in huge_pte_offset() arch/loongarch/kernel/smp.c | 2 +- arch/loongarch/mm/hugetlbpage.c | 3 ++- drivers/iommu/loongarch_iommu.c | 1 - mm/page_alloc.c | 8 ++++++++ 4 files changed, 11 insertions(+), 3 deletions(-) -- 2.33.0

2 5